CertsTopics Logo

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

AWS Certified Specialty ANS-C00 Book

Page: 3 / 6
Total 154 questions
Get ANS-C00 Full Access Download ANS-C00 PDF

AWS Certified Advanced Networking-Specialty Questions and Answers

Question 9

A company has deployed a production environment in the AWS Cloud The environment is contained in a VPC and includes a virtual private gateway The company has established an AWS Direct Connect connection which includes a private virtual interface (VIF) and a VPN connection to the on-premises data center

For traffic originating in the VPC what is the order of BGP path selection from MOST preferred to LEAST preferred?

Options:

A.

Direct Connect BGP routes static routes longest prefix match, VPN BGP routes

B.

Static routes longest prefix match Direct Connect BGP routes. VPN BGP routes

C.

Longest prefix match static routes Direct Connect BGP routes VPN BGP routes

D.

Longest prefix match VPN BGP routes, static routes. Direct Connect BGP routes

Question 10

A gaming company is running an online multiplayer game in multiple AWS Regions The company needs traffic from its end users to be routed to the Region that is closest to the end users geographically When maintenance occurs in a Region, traffic must be routed to the next closest Region with no changes to the IP addresses being used as connections by the end users

Which solution will meet these requirements?

Options:

A.

Create an Amazon CloudFront distribution in front of all the Regions

B.

Use an Amazon Route 53 geoproximity routing policy to navigate traffic to the closest Region

C.

Use an Amazon Route 53 geolocation routing policy to navigate traffic to the closest Region

D.

Configure AWS Global Accelerator in front of all the Regions

Question 11

A company’s Network Engineering team is solely responsible for deploying VPC infrastructure using AWS CloudFormation. The company wants to give its Developers the ability to launch applications using CloudFormation templates so that subnets can be created using available CIDR ranges.

What should be done to meet these requirements?

Options:

A.

Create a CloudFormation templates with Amazon EC2 resources that rely on cfn-init and cfn-signals to inform the stack of available CIDR ranges.

B.

Create a CloudFormation template with a custom resource that analyzes traffic activity in VPC Flow Logs and reports on available CIDR ranges.

C.

Create a CloudFormation template that references the Fn::Cidr intrinsic function within a subnet resource to select an available CIDR range.

D.

Create a CloudFormation template with a custom resource that uses AWS Lambda and Amazon DynamoDB to manage available CIDR ranges.

Question 12

An organization has ordered a new AWS Direct Connect connection. The AWS Management Console reports that the connection is available and BGP status is up. However, the networking team is not able to reach instances in the VPC using ping on the organization's private IP address

What could cause this connectivity issue? (Choose two.)

Options:

A.

The VGW is not advertising the correct CIDR range back on-premises.

B.

The instance security group does not allow ICMP traffic.

C.

A public virtual interface must be configured for Amazon EC2 connectivity.

D.

The on-premises router is not advertising the correct CIDR range to AWS.

E.

There is a misconfiguration of the bi-directional forwarding detection.

Page: 3 / 6
Total 154 questions
Get ANS-C00 Full Access Download ANS-C00 PDF